Using a Virtual Private Network (VPN server) you will protect yourself by encrypting the transferred data and concealing your destination. Nobody will be able to intercept the information you are sending or receiving because all of your data will travel through a special, logical path created by VPN, which is called a “tunnel”. This means that your information enters the tunnel at one end and emerges, secure and unchanged, at the other end. Thus, you will not have to worry about security issues and the VPN will let you enjoy the time you spend surfing the Internet.
Security mechanisms of VPN
Authorisation – VPN connections are only created for users and routers that have been authorised. For Windows 2000, authorization of VPN connections is determined by dial-in properties on the user account and remote access policies. If a user or router is not authorised for such connections, the server will disable them.
Authentication – This is a vital security concern. Authentication takes place at two levels:
Machine-level authentication – when IPSec protocol is used for a VPN connection, machine-level authentication is performed through the exchange of machine certificates during the establishment of the IPSec connection.
User-level authentication – before data can be sent over the PPTP or L2TP tunnel, the user must be authenticated. This is done through the use of a PPP authentication method.
Data encryption – the protocols used to create VPN connections allow encrypted data to be sent over a network. Although it is possible to have a non-encrypted connection, this is not recommended. Note that data encryption for VPN connections does not provide end-to-end security (encryption), but only security between the client and the VPN server. In order to provide a secure end-to-end connection, especially via Wi-Fi, the IPSec protocol can be used once a VPN connection has been established.
Packet filtering – in order to enhance security of the VPN server, packet filtering must be configured so that the server only performs VPN routing. To this end, appropriate RRAS filters should be used (for Windows 2000) on the Internet interface of the VPN.
Network Security using VPN services
Each day hundreds of websites are being hacked due to the existing vulnerabilities. Afterwards so-called bug descriptions (bug is an error that produces an incorrect result and causes system to behave in unintended ways) are disclosed in BugTraq for public discussion. You’ve probably read such reports and might have noticed that each bug is classified in a particular way. Here are the main vulnerabilities and attack methods, information theft and other intrusion methods into your computer:
– computer memory security violation (buffer overflow, freezing)
– data entry verification error (code injection, cross-site scripting and etc.)
– SSL vulnerability and SSL hacking
– other methods, allowing and intruder to gain access to your confidential data
A solution to all of the above is to use modern VPN servers. Even if there is an access to confidential data, encryption methods with a considerable key length would render it useless to any unintended recipient.
Wi-Fi: Bonuses and Threats
Free Internet access has been gaining popularity around the world. But nevertheless Wi-Fi technology remains extremely insecure. Its encrypting and access sharing algorithms can be easily hacked. There are several main threats to the Internet security if accessed via Wi-Fi:
– personal data interception, when the user enters the hacked payment systems; teller terminals
– sniffing – data interception and internet-traffic analysis which leads to a loss of confidential data
– “man in the middle” method of data theft
VPN connection over Wi-Fi network in public places ensures a 100% security of your information.
When VPN is correctly set up and all the software is successfully installed, VPN connection can provide a high level of transmitted data encryption. These encryption technology together with a 1024 bt key make up the strongest security wall for any occasional eavesdropper.